FAQ

How do I authenticate my API calls and obtain an Access Token?
To authenticate with the BCB API, you need to use the OAuth 2.0 Client Credentials Grant flow. You obtain an Access Token by sending a POST request to our authentication endpoint (https://auth.bcb.group/oauth/token) using your unique Client ID and Client Secret. This Access Token (a Bearer token) must then be included in the Authorization header of all subsequent API requests.
Are there any rate limits on API requests?
**While strict, hard-enforced rate limits are generally not applied, the API usage is continuously monitored for potential abusive behavior. This proactive monitoring ensures fair usage and maintains the stability and performance of our services for all users. If unusually high request volumes are detected from your integration, our team will notify you to discuss optimization strategies.
How should I handle and interpret API error responses?
API errors are communicated via standard HTTP status codes (e.g., 4xx for client errors, 5xx for server errors). In most cases, a non-2xx status code will be accompanied by a JSON response body containing specific error details, including an error code, message, and sometimes additional parameters to help diagnose the issue. We recommend logging these error responses and designing your integration to gracefully handle and retry transient errors.